$ rpki-client -vvf repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136382e302f32342d3234203d3e20313439373235.roa File: 3130332e3138382e3136382e302f32342d3234203d3e20313439373235.roa (raw, json) Hash identifier: MrMq1vmSsjx8+60pgP4jBoPEasKC/g1DeWLVozuft0A= Subject key identifier: 0A:5E:C4:AF:13:58:8E:64:75:85:C9:15:D8:04:AD:92:F0:E9:22:DD Certificate issuer: /CN=33EF8ED81E12A39E325D47325D8FDA76CC497040 Certificate serial: 50A2391196A57E90EC2504C2E8C3E9B3FEDCF4C9 Authority key identifier: 33:EF:8E:D8:1E:12:A3:9E:32:5D:47:32:5D:8F:DA:76:CC:49:70:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136382e302f32342d3234203d3e20313439373235.roa Signing time: Thu 01 Aug 2024 10:00:02 +0000 ROA not before: Thu 01 Aug 2024 09:55:02 +0000 ROA not after: Thu 31 Jul 2025 10:00:02 +0000 asID: 149725 IP address blocks: 103.188.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.crl rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:a2:39:11:96:a5:7e:90:ec:25:04:c2:e8:c3:e9:b3:fe:dc:f4:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33EF8ED81E12A39E325D47325D8FDA76CC497040 Validity Not Before: Aug 1 09:55:02 2024 GMT Not After : Jul 31 10:00:02 2025 GMT Subject: CN=0A5EC4AF13588E647585C915D804AD92F0E922DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:26:3f:d1:9a:5d:11:40:86:f0:7e:41:7b:ee: 9d:04:7d:cd:ae:11:2c:06:bf:33:69:c4:35:f8:d9: d7:ae:03:28:5f:4b:8e:77:ab:b6:af:e3:ce:6b:a3: f1:68:bc:de:de:d6:f6:17:15:81:2d:b0:bd:62:a8: 16:32:c6:be:d9:2e:f9:d5:e5:18:0f:18:a0:96:59: bf:91:1e:84:83:95:41:d9:8b:b5:94:ef:16:2c:f0: ba:fb:4d:fd:1f:c4:04:dd:33:0c:0f:91:8b:fd:7a: 36:57:14:73:ec:e5:fb:53:0d:f0:90:cb:ba:1a:dd: f8:19:43:42:48:11:cb:71:10:e3:5e:ab:7b:b5:97: 2c:b3:2e:67:76:19:95:74:87:0a:a7:b3:ee:74:84: 93:e1:5f:2c:1a:6a:8f:09:6f:3e:81:51:7e:22:ef: f2:c3:ea:f0:d3:db:d7:4e:01:77:4e:8d:22:c3:bd: 94:34:e4:6c:a5:83:28:66:0f:1c:39:4d:65:c0:ff: bc:1e:3d:59:61:c7:40:af:f8:89:f7:53:29:3e:59: bc:6d:93:26:c8:e8:a0:f9:e8:25:6a:58:b0:f9:ad: 6b:6d:12:da:13:c9:88:00:04:4d:b8:46:89:be:e6: 47:53:f0:e0:e1:33:91:ac:d8:ff:85:76:b8:e6:31: 26:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:5E:C4:AF:13:58:8E:64:75:85:C9:15:D8:04:AD:92:F0:E9:22:DD X509v3 Authority Key Identifier: keyid:33:EF:8E:D8:1E:12:A3:9E:32:5D:47:32:5D:8F:DA:76:CC:49:70:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136382e302f32342d3234203d3e20313439373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.168.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:67:1a:1d:07:0b:c9:c8:1f:24:93:12:52:9c:5f:bd:dc:14: a1:8c:69:84:64:ea:60:ff:5b:be:18:76:ef:52:da:84:73:d8: d8:d6:d1:31:49:a5:97:bc:28:b2:5b:ad:04:30:60:1f:e6:85: 11:55:80:6e:24:f2:17:2e:d4:f2:96:4f:03:98:9e:6b:ba:ae: b7:fb:21:9e:f5:b9:6f:ab:96:26:f7:f4:ae:25:21:84:9c:6c: 6f:37:46:5f:63:41:7c:e0:48:b3:93:f7:9d:1b:bd:af:f1:cc: a3:b7:69:77:4a:db:ae:39:81:77:06:0e:db:05:04:ef:0e:32: ae:9a:83:98:4c:32:df:dd:dc:45:20:90:15:a5:de:01:20:45: ef:60:08:8a:03:74:dc:54:95:be:b1:4d:da:ce:15:33:e5:74: 8f:5a:a8:0f:73:c3:76:39:33:81:c6:87:01:4d:65:ca:d1:26: 44:22:56:70:ea:18:72:cd:28:4f:b9:99:f1:b0:63:18:f5:38: ba:a6:e1:6d:a0:34:d6:6b:5f:05:09:9c:98:cd:8d:41:02:74: ba:d7:fd:ba:eb:cc:ea:76:09:68:33:69:8d:95:c5:06:9b:38: 1e:30:50:dd:dc:36:a6:57:00:dc:4a:c9:4e:34:08:24:7f:43: bd:d0:16:7c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUKI5EZalfpDsJQTC6MPps/7c9MkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNFRjhFRDgxRTEyQTM5RTMyNUQ0NzMyNUQ4RkRBNzZD QzQ5NzA0MDAeFw0yNDA4MDEwOTU1MDJaFw0yNTA3MzExMDAwMDJaMDMxMTAvBgNV BAMTKDBBNUVDNEFGMTM1ODhFNjQ3NTg1QzkxNUQ4MDRBRDkyRjBFOTIyREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZJj/Rml0RQIbwfkF77p0Efc2u ESwGvzNpxDX42deuAyhfS453q7av485ro/FovN7e1vYXFYEtsL1iqBYyxr7ZLvnV 5RgPGKCWWb+RHoSDlUHZi7WU7xYs8Lr7Tf0fxATdMwwPkYv9ejZXFHPs5ftTDfCQ y7oa3fgZQ0JIEctxEONeq3u1lyyzLmd2GZV0hwqns+50hJPhXywaao8Jbz6BUX4i 7/LD6vDT29dOAXdOjSLDvZQ05GylgyhmDxw5TWXA/7wePVlhx0Cv+In3Uyk+Wbxt kybI6KD56CVqWLD5rWttEtoTyYgABE24Rom+5kdT8ODhM5Gs2P+FdrjmMSYtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCl7ErxNYjmR1hckV2AStkvDpIt0wHwYDVR0j BBgwFoAUM++O2B4So54yXUcyXY/adsxJcEAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2FkZTljMC1jZGUxLTQ3ZjAtOWNkMi00YTU3YmRkZTE0ZTgvMC8zM0VGOEVEODFF MTJBMzlFMzI1RDQ3MzI1RDhGREE3NkNDNDk3MDQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNFRjhFRDgxRTEyQTM5RTMyNUQ0NzMyNUQ4RkRBNzZDQzQ5 NzA0MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzYWRlOWMwLWNkZTEtNDdmMC05 Y2QyLTRhNTdiZGRlMTRlOC8wLzMxMzAzMzJlMzEzODM4MmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMyMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvKgwDQYJ KoZIhvcNAQELBQADggEBABtnGh0HC8nIHySTElKcX73cFKGMaYRk6mD/W74Ydu9S 2oRz2NjW0TFJpZe8KLJbrQQwYB/mhRFVgG4k8hcu1PKWTwOYnmu6rrf7IZ71uW+r lib39K4lIYScbG83Rl9jQXzgSLOT950bva/xzKO3aXdK2645gXcGDtsFBO8OMq6a g5hMMt/d3EUgkBWl3gEgRe9gCIoDdNxUlb6xTdrOFTPldI9aqA9zw3Y5M4HGhwFN ZcrRJkQiVnDqGHLNKE+5mfGwYxj1OLqm4W2gNNZrXwUJnJjNjUECdLrX/brrzOp2 CWgzaY2VxQabOB4wUN3cNqZXANxKyU40CCR/Q73QFnw= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org